Hey everyone. Was curious if anyone has tried a VPN application on the Nexus. Not sure if stock kernel would even support it. I currently use VPN Connections on my Droid Incredible CM7, as it was only easy vpn app I found to connect to my cisco vpn network at work.
Yeah you need custom kernel and root.
Sent from my Galaxy Nexus using XDA App
No root or custom kernel with Columbitech! All stock client with Android 4.0! Two factor authentication, 256 bit AES encryption, FIPS 140-2 certification and session persistence!
https://market.android.com/details?...51bGwsMSwyLDEsImNvbS5jb2x1bWJpdGVjaC5tVlBOIl0.
Wait, I thought ICS added Cisco VPN support. Why bother with rooting or Columbitech?
https://code.google.com/p/android/issues/detail?id=3902#c1537
Cisco VPN now works, at least against the ASA5505 I'm testing against. It accepts Group Names under IPSec/L2TP/PSK. Key in your group name and password, and it should work. Have not messed with certificates yet.
Works for me too (don't know the model).
This release is all kinds of awesome
alee said:
Cisco VPN now works, at least against the ASA5505 I'm testing against. It accepts Group Names under IPSec/L2TP/PSK. Key in your group name and password, and it should work. Have not messed with certificates yet.
Click to expand...
Click to collapse
What about SSL VPN (i.e. Cisco AnyConnect)?
Chirality said:
What about SSL VPN (i.e. Cisco AnyConnect)?
Click to expand...
Click to collapse
Cisco has Anyconnect apps in the market for SSL VPN. You have to have the corresponding mobile licenses installed in the ASA first.
davanw said:
Cisco has Anyconnect apps in the market for SSL VPN. You have to have the corresponding mobile licenses installed in the ASA first.
Click to expand...
Click to collapse
Hmm...looks like it either requires root or a specific hardware vendor's ROM to work. Guess they haven't updated it to use the ICS VPN API yet.
Hmmmm today Im try connect to Cisco VPN which use Group Authentication but failed. On PC I use Cisco VPN Client version 5.0.07.0290 and can normaly connect.
I don't use certificates.
I have selected IPSec over UDP (NAT / PAT).
I have Host, Group Name, Group Password, User Name, User Password which I must write in which edit box on android?
Few of you mention to use it already supports it. I tried to setup one with L2TP/IPSec PSK. Entered the server name. Which fields do you put the group username and password in?
Thanks in advance!
I'm using the IPSec XAuth PSK setup filling the IPSec identifier with group and IPSec pre shared key with the shared password. I didn't need to use the advanced section.
I just basically went through each setup option until I hit the right combination.
That worked! Thanks. Now is there a way to get around requiring a passcode to unlock the phone?
good god that was so much easier than setting up my transformer for this. thanks everyone for the guidance. Any idea if there's a widget that will just turn a specific vpn on/off?
I'm using a Cisco IPSEC VPN concentrator. with PSK auth.
I'm able to connect but i can't route any traffic.
When i connect from my desktop i use to get a /24 IP with a default gw, when connecting from my phone all i get is a /32 ip and no default gw
Related
Hi all
New to the boards, have searched for this but no answer. The wireless works on my home network which has a Belkin wireless access point with WEP enabled and SSID broadcasted. I am using a static IP address as i don't have a DHCP server. This works fine.
When i tried at work using our Cisco AP1200 with WEP enabled but our SSID not broadcast, it connects ok and the AP says it is associated but i can't ping using vxUtil. I have tried using static IP and DHCP. The DHCP server doesn't get the request from the phone so i tried a static address and it still doesn't work! Changing settings on the access points is not really an option (like turning off WEP or broadcasting the SSID - All our Cisco WIFI enabled laptops work fine but then they use Cisco client software).
Can anyone help? I am using the default ROM with the phone and would like to upgrade to see if it helps but im a bit worried it may go wrong and stuff my phone... and as i bought it on eBay im not too sure about the warranty.
Thanks in advance
The Cisco AP's @ my last company used LEAP authentication. Have you configured the EAP authentication settings on your PPC? You may be able to steal the settings from your ACU clent on your laptop.
Raptor
I have configured all the access points myself and we don't use LEAP or EAP or a RADIUS server or 802.1x or WPA etc... Just WEP and non broadcasting of our SSID. Still no joy!
Try the Odyssey Client from www.funk.com
I gave up trying to get windows to connect.
Good luck
Err i dont see anything about pocket pc's on there?
Can anyone please help? Do i need to try updating the rom?
tonyyeb said:
I have configured all the access points myself and we don't use LEAP or EAP or a RADIUS server or 802.1x or WPA etc... Just WEP and non broadcasting of our SSID. Still no joy!
Click to expand...
Click to collapse
Well, just enable ssid broadcast.
Download this:
http://www.funk.com/Download/odyc_ppc_40.exe
You may need to sign up for a trial.
ncruz said:
tonyyeb said:
I have configured all the access points myself and we don't use LEAP or EAP or a RADIUS server or 802.1x or WPA etc... Just WEP and non broadcasting of our SSID. Still no joy!
Click to expand...
Click to collapse
Well, just enable ssid broadcast.
Click to expand...
Click to collapse
tonyyeb said:
Changing settings on the access points is not really an option (like turning off WEP or broadcasting the SSID)
Click to expand...
Click to collapse
!!!!!!!!
@ JameZUK: Thanks ill give that a go
I connect to my AP1200 without any issues with the same settings you're currently running. Are you using MAC filtering? Double check the WEP (HEX/BIN)?
//edit: DNS issue fixed, reusing this thread for another issue.
On Windows PPTP VPN connections, you can select whether or not the default gateway gets set to that of the VPN server. In the Android VPN client, it automatically sets the default gw to the VPN server.
Any way to prevent this from happening?
DNS issue fixed, re-using this post for another problem
liquidkernel said:
//edit: DNS issue fixed, reusing this thread for another issue.
On Windows PPTP VPN connections, you can select whether or not the default gateway gets set to that of the VPN server. In the Android VPN client, it automatically sets the default gw to the VPN server.
Any way to prevent this from happening?
Click to expand...
Click to collapse
How did you resolve this issue?!
scriptx said:
How did you resolve this issue?!
Click to expand...
Click to collapse
DNS issue was something weird, it had to do with my ROM.
I still haven't resolved the ability to keep your default gateway instead of changing to the one of the VPN. So I only connect when I need to, but it would be great to be always connected so I can have access to my NAS.
I setup the anyconnect client on my phone which works great. I can access internal web pages, ssh to internal devices. Problem is that if I launch the anyconnect client on the phone, and then wifi tether my laptop to the phone, the phone will not forward the traffic from the tethered device to the Anyconnect VPN.
FWIW, Wifi Tethering works fine without the Anyconnect.
Running Task650's 4.2.2 rom and the Anyconnect for root users on the phone.
-J
Same problem here. Any help would be appreciated!
it's probably a routing issue on the phone, but I haven't had a chance to look into it yet.
-J
bump.
bump. I will look into this. But can't post my help until I make 10 posts and get the ability to post links
Its a setting set by your administrator
The issue:
You might already know this but your network admin configured the app to prevent sharing of the connection. This is a common measure to prevent breaches in security. Looking at the Cisco AnyConnect release notes:
Cisco has qualified the AnyConnect VPN client over a bluetooth or USB tethered Apple iPhone only. Network connectivity provided by other tethered devices should be verified with the AnyConnect VPN client before deployment.
Click to expand...
Click to collapse
The WorkAround
How AnyConnect works on the android is the same as on a computer, which is documented on SuperUser.
So what we have to do is either, export the VPN profile to another VPN app, or change the variable in memory that prevents tethering of the AnyConnect VPN session.
This can be done using (while it wasn't created for this purpose) Game Gardian
Hi everyone,
Has anyone successfully connected to Cisco VPN using Group Authentication? I've tried to use IPSec Xauth PSk in both basic and advanced VPN settings but no luck.
At the very least, I'd like to be able to view the log to identify the issue. How can I access this log? Thanks!
h16h said:
Hi everyone,
Has anyone successfully connected to Cisco VPN using Group Authentication? I've tried to use IPSec Xauth PSk in both basic and advanced VPN settings but no luck.
At the very least, I'd like to be able to view the log to identify the issue. How can I access this log? Thanks!
Click to expand...
Click to collapse
Why you just dont try with NCP VPn Client, it allows you to import the pcf file or insert your own values there, works very well.
xlaurent said:
Why you just dont try with NCP VPn Client, it allows you to import the pcf file or insert your own values there, works very well.
Click to expand...
Click to collapse
I realize 3rd party apps may work, (VPNCilla confirmed) but I am trying to utilize the native (and free) option.
As the title says I want to change the DNS for both Wi-Fi and data to Google's DNS servers.
Before this phone I used a Magisk module to change the DNS for my Mi Pad 4 (Wi-Fi only), but the module is not available anymore and I don't think it works for data networks.
All methods are welcome: ADB, terminal (root), Magisk module, app (root)...
Nemix77 said:
As the title says I want to change the DNS for both Wi-Fi and data to Google's DNS servers.
Before this phone I used a Magisk module to change the DNS for my Mi Pad 4 (Wi-Fi only), but the module is not available anymore and I don't think it works for data networks.
All methods are welcome: ADB, terminal (root), Magisk module, app (root)...
Click to expand...
Click to collapse
Can't you just use a DNS changer app that acts as a VPN
Also on AOSP you can change your DNS in network and internet settings under private DNS
I'll look into it, I'd rather not go through a VPN. The description for the app is a bit confusing.
Miui has private DNS also, but IPv4 addresses are not accepted.
I think I have to provide the Google's host name for private DNS to work?
The Magisk module I used a while back uses terminal and requires root.
Nemix77 said:
Miui has private DNS also, but IPv4 addresses are not accepted.
I think I have to provide the Google's host name for private DNS to work?
Click to expand...
Click to collapse
You can use hostnames :
1dot1dot1dot1.clouldflare-dns.com
dns.quad9.net
dns.google
1695 said:
You can use hostnames :
1dot1dot1dot1.clouldflare-dns.com
dns.quad9.net
dns.google
Click to expand...
Click to collapse
Personally I use dns.adguard.com it doesn't track and is quite good and at blocking ads
1695 said:
You can use hostnames :
1dot1dot1dot1.clouldflare-dns.com
dns.quad9.net
dns.google
Click to expand...
Click to collapse
I'm a networking specialist and the network settings on Android (perhaps it's just Miui) make no sense at all.
It's very basic and counter intuitive to have hostnames for DNS servers for DNS settings.
All other operating systems including Cisco's IOS (which is based on Unix) uses 32-bit or 128-bit addresses for DNS, simply because these are direct IP addresses and are not alias hostnames.
Furthermore, direct public IP addresses do not need to be translated from hostname to IPv4/IPv6 address blocks in order to contact the DNS server, it's the DNS server's job for address translation.
Both Linux and Windows Servers need administrative/root (su) permissions to set the DNS addresses, I was expecting the same thing on Android (root permission via Magisk) since the kernel is based on Linux.
Despite my annoyance, thanks for all the help guys!
Blokada. I use it since last year, it acts like a vpn but u only have a vpn if u pay the premium, the free version allows you to block tracking, ads and change dns from both wifi and mobile. Doesn't drain battery.
Blokoda for blocking ads goes through a VPN server, that's understandable.
Edit:
Much easier to understand and search if they just label private DNS as DoT and DoH, currently not implemented in company networks yet.
Hello,
I am an experienced user on jailbroken ios and I inform you that we can change the dns server just by defining an ip address and its working and by just editing a system file, no need for third party application or vpn.
I change dns as if I were on windows I defined the dns ip address and it all works immediately in 4G cellular data.
On android at the time on android kitkat 4.4.4 or 4.4.2 and lollipop 5.0.1 and 5.1.1 you could change the dns server by editing the build prop and its market perfectly in mobile data and wifi.
Then in December 2020 I bought a smartphone to go back to android for the custom modding side so I bought the S20 FE 5G under android 10 and the dns in cellular 4G does not work at all, even by putting a domain name it didn't work at all.
On android the dns in wifi can be changed but the mobile data I couldn't find, so I went back to jailbroken ios a thousand times better than a personalized android.
roid personnalisé.
yassine71100 said:
Hello,
I am an experienced user on jailbroken ios and I inform you that we can change the dns server just by defining an ip address and its working and by just editing a system file, no need for third party application or vpn.
I change dns as if I were on windows I defined the dns ip address and it all works immediately in 4G cellular data.
On android at the time on android kitkat 4.4.4 or 4.4.2 and lollipop 5.0.1 and 5.1.1 you could change the dns server by editing the build prop and its market perfectly in mobile data and wifi.
Then in December 2020 I bought a smartphone to go back to android for the custom modding side so I bought the S20 FE 5G under android 10 and the dns in cellular 4G does not work at all, even by putting a domain name it didn't work at all.
On android the dns in wifi can be changed but the mobile data I couldn't find, so I went back to jailbroken ios a thousand times better than a personalized android.
roid personnalisé.
Click to expand...
Click to collapse
You don't need root to change DNS on Android. You can use Private DNS which work on both WiFi and Mobile Data just fine. I don't think you can do that on iOS without jailbreaking.
kima09 said:
You don't need root to change DNS on Android. You can use Private DNS which work on both WiFi and Mobile Data just fine. I don't think you can do that on iOS without jailbreaking.
Click to expand...
Click to collapse
Hello,
Android's private dns does not work very well precisely depending on the dns server.
When I enter the DNS domain name and well it does not work at all!
This "FDN" DNS server, for example, does not work on Android at all, even when entering its domain name.
FDN - Fournisseur d'Accès à Internet associatif depuis 1992
Going back to ios you can change the dns without jailbreak it's possible but you have to go through an application etc which simulates a vpn connection, except.
Off on ios at least once root I can define the dns server of my choice by defining an ip address as on windows when you change the dns server, also it works afterwards in non-jailbreak mode.
On my iPhone my DNS at FDN works perfectly 3G/4G/5G Wifi.
If on android I can define the dns server of my choice by entering the dns ip address it's perfect but unfortunately it's not the case!